https://community.isc2.org/t5/Industry-News/ConfusedPilot-Attack-Can-Manipulate-RAG-Based-AI-Systems/m-p/74567#M7259 <P>Hi All</P><P>&nbsp;</P><P class=""><SPAN class="">Attackers can add a malicious document to the data pools used by artificial intelligence (AI) systems to create responses, which can confuse the system and potentially lead to misinformation and compromised decision-making processes within organisations.</SPAN></P><P class=""><SPAN class="">Researchers from the Spark Research Lab at the University of Texas (UT) at Austin discovered the attack vector, which they've dubbed </SPAN><SPAN class=""><A class="" href="https://confusedpilot.info/" target="_blank" rel="noopener">ConfusedPilot</A></SPAN><SPAN class=""> because it affects all retrieval augmented generation </SPAN><SPAN class=""><A class="" href="https://www.darkreading.com/application-security/zero-click-genai-worm-malware-poisoning-models" target="_self">(RAG)-based AI systems</A></SPAN><SPAN class="">, including </SPAN><SPAN class=""><A class="" href="https://www.darkreading.com/application-security/how-to-weaponize-microsoft-copilot-for-cyberattackers" target="_self">Microsoft 365 Copilot.</A></SPAN><SPAN class=""> This includes other RAG-based systems that use Llama, Vicuna, and OpenAI, according to the researchers.</SPAN></P><P class="">&nbsp;</P><P class=""><SPAN class=""><A href="https://www.darkreading.com/cyberattacks-data-breaches/confusedpilot-attack-manipulate-rag-based-ai-systems" target="_blank" rel="noopener">https://www.darkreading.com/cyberattacks-data-breaches/confusedpilot-attack-manipulate-rag-based-ai-systems</A></SPAN></P><P class="">&nbsp;</P><P class=""><SPAN class="">Regards</SPAN></P><P class="">&nbsp;</P><P class=""><SPAN class="">Caute_ Cautim</SPAN></P><P class="">&nbsp;</P><P class="">&nbsp;</P><P class="">&nbsp;</P><P class="">&nbsp;</P> Wed, 16 Oct 2024 03:15:04 GMT Caute_cautim 2024-10-16T03:15:04Z https://community.isc2.org/t5/Industry-News/ConfusedPilot-Attack-Can-Manipulate-RAG-Based-AI-Systems/m-p/74567#M7259 <P>Hi All</P><P>&nbsp;</P><P class=""><SPAN class="">Attackers can add a malicious document to the data pools used by artificial intelligence (AI) systems to create responses, which can confuse the system and potentially lead to misinformation and compromised decision-making processes within organisations.</SPAN></P><P class=""><SPAN class="">Researchers from the Spark Research Lab at the University of Texas (UT) at Austin discovered the attack vector, which they've dubbed </SPAN><SPAN class=""><A class="" href="https://confusedpilot.info/" target="_blank" rel="noopener">ConfusedPilot</A></SPAN><SPAN class=""> because it affects all retrieval augmented generation </SPAN><SPAN class=""><A class="" href="https://www.darkreading.com/application-security/zero-click-genai-worm-malware-poisoning-models" target="_self">(RAG)-based AI systems</A></SPAN><SPAN class="">, including </SPAN><SPAN class=""><A class="" href="https://www.darkreading.com/application-security/how-to-weaponize-microsoft-copilot-for-cyberattackers" target="_self">Microsoft 365 Copilot.</A></SPAN><SPAN class=""> This includes other RAG-based systems that use Llama, Vicuna, and OpenAI, according to the researchers.</SPAN></P><P class="">&nbsp;</P><P class=""><SPAN class=""><A href="https://www.darkreading.com/cyberattacks-data-breaches/confusedpilot-attack-manipulate-rag-based-ai-systems" target="_blank" rel="noopener">https://www.darkreading.com/cyberattacks-data-breaches/confusedpilot-attack-manipulate-rag-based-ai-systems</A></SPAN></P><P class="">&nbsp;</P><P class=""><SPAN class="">Regards</SPAN></P><P class="">&nbsp;</P><P class=""><SPAN class="">Caute_ Cautim</SPAN></P><P class="">&nbsp;</P><P class="">&nbsp;</P><P class="">&nbsp;</P><P class="">&nbsp;</P> Wed, 16 Oct 2024 03:15:04 GMT https://community.isc2.org/t5/Industry-News/ConfusedPilot-Attack-Can-Manipulate-RAG-Based-AI-Systems/m-p/74567#M7259 Caute_cautim 2024-10-16T03:15:04Z